rcu: INFO: rcu_preempt self-detected stall on CPU
rcu: 	1-....: (10495 ticks this GP) idle=4ccc/1/0x4000000000000000 softirq=22649/25658 fqs=5166
rcu: 	         hardirqs   softirqs   csw/system
rcu: 	 number:  1203694       3397            0
rcu: 	cputime:    31673      20714          142   ==> 52480(ms)
rcu: 	(t=10500 jiffies g=15365 q=4978 ncpus=2)
CPU: 1 UID: 0 PID: 6968 Comm: syz.2.265 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:kernel_text_address+0x2d/0xe0
Code: 00 55 41 56 53 48 81 ff 00 00 00 81 0f 93 c0 48 81 ff bc 43 7e 8b 0f 92 c1 bd 01 00 00 00 84 c8 75 0c 48 89 fb e8 c3 33 a7 ff <85> c0 74 0c 89 e8 5b 41 5e 5d e9 44 ca f0 09 cc 48 c7 c0 80 69 a3
RSP: 0018:ffffc900001dfdb8 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 00007ff93c18eba9 RCX: ffff88801c30b980
RDX: 0000000000000100 RSI: 00007ff93c18e000 RDI: ffffffffff600000
RBP: 0000000000000001 R08: 0000000000000022 R09: ffffffff8172d195
R10: ffffc900001dfe58 R11: ffffffff81ac4d00 R12: ffff88801c30b980
R13: ffff88812c5f2e80 R14: dffffc0000000000 R15: 1ffff9200003bfca
FS:  00007ff93d03d6c0(0000) GS:ffff8881a3c13000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000110c26a924 CR3: 000000010f7a8000 CR4: 00000000000006f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 __kernel_text_address+0xd/0x40
 unwind_get_return_address+0x4d/0x90
 arch_stack_walk+0xfc/0x150
 stack_trace_save+0x9c/0xe0
 kasan_save_track+0x3e/0x80
 __kasan_kmalloc+0x93/0xb0
 __kmalloc_noprof+0x27a/0x4f0
 cfg80211_inform_single_bss_data+0x905/0x1ac0
 cfg80211_inform_bss_data+0x1fb/0x3b30
 cfg80211_inform_bss_frame_data+0x3d7/0x730
 ieee80211_bss_info_update+0x746/0x9e0
 ieee80211_scan_rx+0x593/0xa20
 ieee80211_rx_list+0x201c/0x2a90
 ieee80211_rx_napi+0x1a8/0x3d0
 ieee80211_handle_queued_frames+0xe8/0x1f0
 tasklet_action_common+0x36c/0x580
 handle_softirqs+0x286/0x870
 __irq_exit_rcu+0xca/0x1f0
 irq_exit_rcu+0x9/0x30
 sysvec_apic_timer_interrupt+0xa6/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:printk_get_console_flush_type+0x0/0x460
Code: fd 8d e8 b3 3c 83 00 e9 10 ff ff ff 66 66 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <55> 41 57 41 56 53 48 89 fb e8 72 95 1f 00 ba 04 00 00 00 48 89 df
RSP: 0018:ffffc9000318ea18 EFLAGS: 00000293
RAX: ffffffff81a07a4f RBX: ffffffff81a0704a RCX: ffff88801c30b980
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000318eb00
RBP: ffffc9000318eb70 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffffbfff1bfa234 R12: dffffc0000000000
R13: 0000000000000001 R14: 0000000081a07801 R15: 0000000000000000
 console_flush_all+0x112/0xc40
 console_unlock+0xc4/0x270
 vprintk_emit+0x5b7/0x7a0
 _printk+0xcf/0x120
 netdev_info+0x10a/0x160
 __dev_set_promiscuity+0x307/0x740
 netif_set_promiscuity+0x50/0xe0
 dev_set_promiscuity+0x126/0x260
 del_nbp+0x12c/0xa60
 br_dev_delete+0x6e/0x100
 rtnl_dellink+0x477/0x710
 rtnetlink_rcv_msg+0x7cf/0xb70
 netlink_rcv_skb+0x208/0x470
 netlink_unicast+0x82f/0x9e0
 netlink_sendmsg+0x805/0xb30
 __sock_sendmsg+0x21c/0x270
 ____sys_sendmsg+0x505/0x830
 ___sys_sendmsg+0x21f/0x2a0
 __x64_sys_sendmsg+0x19b/0x260
 do_syscall_64+0xfa/0x3b0
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff93c18eba9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ff93d03d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007ff93c3d5fa0 RCX: 00007ff93c18eba9
RDX: 0000000000040000 RSI: 0000200000000600 RDI: 0000000000000010
RBP: 00007ff93c211e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff93c3d6038 R14: 00007ff93c3d5fa0 R15: 00007ffc41b2d448
 </TASK>
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 6968 Comm: syz.2.265 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:asm_sysvec_apic_timer_interrupt+0x0/0x20
Code: 56 5c 7a 0a e9 61 06 00 00 90 f3 0f 1e fa 0f 1f 00 fc 6a ff e8 11 05 00 00 48 89 c4 48 89 e7 e8 66 5b 7a 0a e9 41 06 00 00 90 <f3> 0f 1e fa 0f 1f 00 fc 6a ff e8 f1 04 00 00 48 89 c4 48 89 e7 e8
RSP: 0018:ffffc900001e0958 EFLAGS: 00000802
RAX: 0000000000000000 RBX: ffff8881128f30a0 RCX: ffff88801c30b980
RDX: 0000000000000100 RSI: 0000000000000001 RDI: 0000000000000002
RBP: ffffc900001e0b18 R08: ffff88801c30b980 R09: 0000000000000002
R10: 0000000000000003 R11: 0000000000000100 R12: ffff8881128f3338
R13: ffff888111bfb0a0 R14: dffffc0000000000 R15: ffff888111bfeeb0
FS:  00007ff93d03d6c0(0000) GS:ffff8881a3c13000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000110c26a924 CR3: 000000010f7a8000 CR4: 00000000000006f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
RIP: 0010:mac80211_hwsim_tx_frame_no_nl+0x7bf/0x11c0
Code: a4 24 10 01 00 00 48 c7 84 24 18 01 00 00 00 00 00 00 4c 39 eb 74 70 4d 8d bd 10 3e 00 00 4c 89 f8 48 c1 e8 03 42 0f b6 04 30 <84> c0 0f 85 b4 05 00 00 41 80 3f 00 74 59 4d 8d bd 11 3e 00 00 4c
RSP: 0018:ffffc900001e0980 EFLAGS: 00000a02
 mac80211_hwsim_tx_frame+0x1b5/0x200
 mac80211_hwsim_beacon_tx+0x3f0/0x860
 __iterate_interfaces+0x2ab/0x590
 ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
 mac80211_hwsim_beacon+0xbb/0x1c0
 __hrtimer_run_queues+0x52c/0xc60
 hrtimer_run_softirq+0x187/0x2b0
 handle_softirqs+0x286/0x870
 __irq_exit_rcu+0xca/0x1f0
 irq_exit_rcu+0x9/0x30
 sysvec_apic_timer_interrupt+0xa6/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:printk_get_next_message+0x0/0x7b0
Code: 89 fb e8 e3 67 1f 00 48 89 df 48 c7 c6 60 77 8b 8b 5b e9 d3 fc ff ff 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48
RSP: 0018:ffffc9000318ea18 EFLAGS: 00000246
RAX: 1ffffffff1d36a47 RBX: ffffffff8e9b5238 RCX: 0000000000000001
RDX: 0000000000000000 RSI: 0000000000000acc RDI: ffffc9000318ea80
RBP: ffffc9000318eb70 R08: ffffffff99b028c0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff8e9b51e0
 console_flush_all+0x4ca/0xc40
 console_unlock+0xc4/0x270
 vprintk_emit+0x5b7/0x7a0
 _printk+0xcf/0x120
 netdev_info+0x10a/0x160
 __dev_set_promiscuity+0x307/0x740
 netif_set_promiscuity+0x50/0xe0
 dev_set_promiscuity+0x126/0x260
 del_nbp+0x12c/0xa60
 br_dev_delete+0x6e/0x100
 rtnl_dellink+0x477/0x710
 rtnetlink_rcv_msg+0x7cf/0xb70
 netlink_rcv_skb+0x208/0x470
 netlink_unicast+0x82f/0x9e0
 netlink_sendmsg+0x805/0xb30
 __sock_sendmsg+0x21c/0x270
 ____sys_sendmsg+0x505/0x830
 ___sys_sendmsg+0x21f/0x2a0
 __x64_sys_sendmsg+0x19b/0x260
 do_syscall_64+0xfa/0x3b0
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff93c18eba9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ff93d03d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007ff93c3d5fa0 RCX: 00007ff93c18eba9
RDX: 0000000000040000 RSI: 0000200000000600 RDI: 0000000000000010
RBP: 00007ff93c211e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff93c3d6038 R14: 00007ff93c3d5fa0 R15: 00007ffc41b2d448
 </TASK>
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 6968 Comm: syz.2.265 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:native_apic_msr_write+0x39/0x50
Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 cc cc cc cc cc f3 0f 1e fa 89 f6 31 d2 e9 d2 21 8f 03 66
RSP: 0018:ffffc900001e07b8 EFLAGS: 00000046
RAX: 0000000000000050 RBX: ffff888136623900 RCX: 0000000000000838
RDX: 0000000000000000 RSI: 0000000000000050 RDI: 0000000000000838
RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff81ae170e
R10: 0000000000000003 R11: ffffffff81704490 R12: 0000000010006d0d
R13: dffffc0000000000 R14: 0000000000000050 R15: 0000000000000020
FS:  00007ff93d03d6c0(0000) GS:ffff8881a3c13000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000110c26a924 CR3: 000000010f7a8000 CR4: 00000000000006f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <IRQ>
 lapic_next_event+0x11/0x20
 clockevents_program_event+0x1cf/0x360
 hrtimer_interrupt+0x620/0xaa0
 __sysvec_apic_timer_interrupt+0x10b/0x410
 sysvec_apic_timer_interrupt+0x52/0xc0
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
Code: 74 05 e8 cb 5b 4a f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> e3 00 13 f6 65 8b 05 6c c1 23 07 85 c0 74 40 48 c7 04 24 0e 36
RSP: 0018:ffffc900001e0a20 EFLAGS: 00000206
RAX: 3bbcd9da41d11800 RBX: 0000000000000a06 RCX: 3bbcd9da41d11800
RDX: 0000000000000002 RSI: ffffffff8d9ba4b2 RDI: 0000000000000001
RBP: ffffc900001e0aa8 R08: ffffffff8fa3ab37 R09: 1ffffffff1f47566
R10: dffffc0000000000 R11: fffffbfff1f47567 R12: dffffc0000000000
R13: dffffc0000000000 R14: ffff888136625900 R15: 1ffff9200003c144
 __mod_timer+0xb37/0xf30
 mrp_periodic_timer+0x1d9/0x220
 call_timer_fn+0x17e/0x5f0
 __run_timer_base+0x61a/0x860
 run_timer_softirq+0xb7/0x180
 handle_softirqs+0x286/0x870
 __irq_exit_rcu+0xca/0x1f0
 irq_exit_rcu+0x9/0x30
 sysvec_apic_timer_interrupt+0xa6/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x1a/0x20
RIP: 0010:__srcu_read_unlock+0x0/0x70
Code: 3b 3b 0f 95 c0 5b 41 5e 41 5f c3 cc cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 41 56 53 89 f3 49 89 fe f0 83 44 24 fc 00 49 83 c6 08
RSP: 0018:ffffc9000318ea18 EFLAGS: 00000286
RAX: 3bbcd9da41d11800 RBX: ffffffff81a0704a RCX: 3bbcd9da41d11800
RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffffffff8e015c80
RBP: ffffc9000318eb70 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: fffffbfff1bfa234 R12: dffffc0000000000
R13: 0000000000000001 R14: 0000000081a07801 R15: 0000000000000000
 console_flush_all+0xb34/0xc40
 console_unlock+0xc4/0x270
 vprintk_emit+0x5b7/0x7a0
 _printk+0xcf/0x120
 netdev_info+0x10a/0x160
 __dev_set_promiscuity+0x307/0x740
 netif_set_promiscuity+0x50/0xe0
 dev_set_promiscuity+0x126/0x260
 del_nbp+0x12c/0xa60
 br_dev_delete+0x6e/0x100
 rtnl_dellink+0x477/0x710
 rtnetlink_rcv_msg+0x7cf/0xb70
 netlink_rcv_skb+0x208/0x470
 netlink_unicast+0x82f/0x9e0
 netlink_sendmsg+0x805/0xb30
 __sock_sendmsg+0x21c/0x270
 ____sys_sendmsg+0x505/0x830
 ___sys_sendmsg+0x21f/0x2a0
 __x64_sys_sendmsg+0x19b/0x260
 do_syscall_64+0xfa/0x3b0
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7ff93c18eba9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ff93d03d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007ff93c3d5fa0 RCX: 00007ff93c18eba9
RDX: 0000000000040000 RSI: 0000200000000600 RDI: 0000000000000010
RBP: 00007ff93c211e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ff93c3d6038 R14: 00007ff93c3d5fa0 R15: 00007ffc41b2d448
 </TASK>
